Friday, 7 April 2017

JWT mobile and web login with different tokens

We have two client side application

1.Web app(Single page application).

2.Mobile (android and ios)

Both clients are powered by REST api (Express js) with JWT authentication.

My question about being login process.

1.When the user is logged in from mobile we return the JWT token for further api requests.

2.When user logged in from the web (already logged in mobile and issued a token) older token is replaced with new JWT token. So the problem is mobile login is invalidated because we uses the same JWT token for both (web and mobile)

How to keep track the separate logins for web and mobile in JWT.



via Jabaa

No comments:

Post a Comment